We’ve seen strange things on the Internet, but none may be stranger than this. While most ransomware typically encrypts files and demands ransom from the victim, this newly discovered variant locks up your files, threatens to delete them, and… asks you to educate yourself about ransomware. Funny, but we’re not kidding. Koolova is the educational ransomware.
Meet Koolova
Recently discovered by a security researcher, “Koolova” is an in-development ransomware that is a new variant of an infamous crypto-malware. It claims to be a nice version of the Jigsaw ransomware, though it isn’t one you should take lightly.
Once it’s unleashed, Koolova encrypts your files and displays a screen similar to Jigsaw’s. As the text gradually shows up on the screen, it will tell you to read two articles about ransomware to get the decryption key. No big deal, right? Wrong.
No Idle Threat
If you’re too lazy to follow the instruction and read those two articles within a prescribed timeframe, the ransomware actually deletes your files. It’s not playing around so you need to take action before time runs out.
So what are those two articles you need to read? They’re “Jigsaw Ransomware Decrypted: Will delete your files until you pay the Ransom” by Bleeping Computer® and “Stay safe while browsing” on Google Security Blog. Oddly, you can navigate to the articles directly off the ransomware’s information screen by clicking the two links displayed.
When you read both, the Decripta i Miei File (English translation: Decrypt My Files) button then becomes available. Thank your lucky stars that the ransomware doesn’t give you an exam about what you’ve just read. Click on that and the ransomware connects to its server to retrieve a decryption key. Afterward, you can take the key, enter it into the key field, and finally heave a sigh of relief.
The Biggest Takeaway
As Koolova takes your files hostage, it will ask you to stop downloading unsafe applications off the Web. That may be the biggest takeaway from this close shave against a potentially nasty disaster.
- Be extra sure your precious computer won’t be held hostage by Koolova or any ransomware anytime soon by heeding these tips:
- Run an up-to-date antivirus software on regular intervals.
- Disable any browser plug-ins or software you don’t use to reduce your vulnerability to online threats.
- Keep your Internet browser and, more importantly, your operating system updated.
- Never open email attachments from unreliable and untrustworthy sources.
Whether or not you become more careful about what you do on the web from here on out, one thing is sure: Koolova may be the closest you or anyone can get to learning about ransomware the hard way.
Ransomware Threats on the Rise
Koolova isn’t the only strange malware we’ve seen so far. Popcorn Time is a nasty malware that only frees you from its clutches when you infect somebody else on your contact list.
The scary part in all these is that these online threats will only get more cunning and aggressive over time. Vigilance, no doubt, may be the best and only way to protect yourself against them.